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Amendments to the Claims : 

A listing of the entire set of pending claims (including amendments to the claims, 
if any) is submitted herewith per 37 CFR 1.121. This listing of claims will replace all 
prior versions and listings of claims in the application. 

1 .(currently amended): A method of generating an Authorized Domain (AD) , th e m e thod 
comprising the steps of comprises: 

selecting a domain identifier (Domain ID) uniquely identifying the Authorized 

Domain (AD) (iOO), 

- binding at least one user (P 1 , P2, . . . , PNi) to the domain identifier (Domain ID), 

- binding at least one device (D 1 , D2, . . . , DM) to the domain identifier 
(Domain ID), and 

- binding at least one content item (C 1 . C2 CN?^ to the Authorized Domain 

(AD) given by the domain identifier (Domain ID). 

thereby obtaining a number of devices (Dl, D2, . . ., DM) and a number of users 

p e rsons (PI, P2, . . ., PNi) that is authorized to access [[a]] content item items (CI. C2 

CN2) of said Authorized Domain (AD) (iOO) 

wherein access to the at least one content item (CI, C2 CN?) is obtained by 

verifying that the at least one content item (CI. C2 CN?) and the at least one user 

(PI. P2 PNO are linked to the same domain identifier (Domain ID) or by verifying 

that the at least one device (Dl. D2 DM) and the at least one content item (CI. C2. 

.... CN?) ) are linked to the same domain identifier (Domain ID) . 
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Claim 2. (canceled) 

3 . (currently amended): A method according to claim 1 , wherein characterized in that the 
step-ef binding at least one user (PI, P2, . . ., PNi) to the domain identifier (Domain ID) 
comprises: 

obtaining or generating a Domain Users List (DUC) comprising the domain 
identifier (Domain ID) and a unique identifier (Pers IDl, Pers_ID2, . . ., 
Pers IDNi) for a user (PI, P2, . . ., PNi) thereby defining that the user is bound to 
the Authorized Domain {AD)(iOO), 
and/or in that 

the step of binding at least one device (Dl, D2, . . ., DM) to the domain identifier 
(Domain_ID) comprises: 

- obtaining or generating a Domain Devices List (DDC) comprising the domain 
identifier (Domain ID) and a unique identifier (Dev.IDl, Dev.ID2, . . ., Dev.IDM) 
for a device (D 1 , D2, . . . , DM) thereby defining that the device is bound to the 
domain {W^. 

4. (currently amended): A method according to claim 1 [[2]], wherein oharactorizod in 
that the stop of binding at least one content item (CI, C2, . . ., CN2) to the Authorized 
Domain (AD) comprises: 

- binding a content item (C 1 , C2, . . . , CN2) to a User Right (URC 1 , URC2, . . . 
URCN2), where said User Right (URCl, URC2, . . . URCN2) is bound to a user 
(PI , P2, . . . , PNi) bound to the Authorized Domain (AD^ ^WO), and/or 
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- binding a content item (C 1 , C2, . . . , CN2) to a Device Right (DevRC), where said 
Device Right (DevRC) is bound to a device (Dl, D2, . . ., DM) bound to the 
Authorized Domain (AD) (WO). 

5. (currently amended): A method according to claim 1 [[2]], wherein charact e riz e d in 
that the step of binding at least one content item (CI, C2, . . ., CN2) to the Authorized 
Domain (AD) (100) comprises: 

- binding a content item (C 1 , C2, . . . , CN3) to a Domain Right (DRC 1 , DRC2, . . . 
DRCN2), where said Domain Right (DRCl, DRC2, . . . DRCN2) is bound to the 
Authorized Domain (AD) (iOO). 

6. (currently amended): A method according to claim 4, wherein charact e riz e d in that the 
User Right (URC) or the Device Right (DevRC) or the Domain Rights (DRC) comprises 
rights data (Rghts Dat) representing which rights exists in relation to the at least one 
content item (C 1 , C2, . . . , CN2) bound to the User Right (URC) or the Device Right 
(DevRC) or the Domain Rights (DRC). 

7. (currently amended): A method according to claim 1, characterized in that the method 

further comprises the stop of controlling access to a given content item bound to the 
Authorized Domain (AD) (100) by a given device being operated by a given user, ^ 
step comprising: 

checking if the given user is bound to the same Authorized Domain (AD) (100) as 
the given content item, or 
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- checking if the given device is bound to the same Authorized Domain (AD) (100) 

as the given content item, 

and allowing access for the given user via the given device and/or other devices to 
the content item if the given user is bound to the same Authorized Domain (AD) (100) , 

or allowing access for the given user and/or other users via the given device to the 
content item if the given device is part of the same Authorized Domain (AD) (100) . 

8. (currently amended): A method according to claim 1, charact e riz e d in that the method 
further comprises th e st e p of controlling access to a given content item (CI, C2, . . ., 
CN2), being bound to the Authorized Domain (AD) (ICQ) and having a unique content 
identifier (Cont ID), by a given device being operated by a given user comprising: 
checking if the Domain Devices List (DDC) of the Authorized Domain (AD) 
(100) comprises an identifier (Dev.ID) of the given device, thereby checking if 
the given device is bound to the same Authorized Domain (AD) (100) as the 
content item, and/or 

checking if the Domain User List (DUC) of the Authorized Domain (AD) (100) 
comprises an identifier (PersID) of the given user (PI, P2, . . ., PNi) thereby 
checking if the given user is bound to the same Authorized Domain (AD) (100) as 

the content item, 

and allowing access to the given content item (CI, C2, . . ., CN2) by the given 
device (Dl, D2, . . ., DM) for any user if the given device is bound to the same 
Authorized Domain (AD) (100) as the content item being accessed, and/or 
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- allowing access to the given content item (C 1 , C2, . . . , CN2) by any device 

including the given device for the given user if the given user is bound to the 
same Authorized Domain (AD) (100) as the content item being accessed. 

9. (currently amended): A method according to claim 7, wherein charact e riz e d in that the 
step-ef controlling access of a given content item further comprises: 

- checking that the User Right (URC) for the given content item specifies that the 
given user (PI, P2, . . ., PNi) has the right to access the given content item (CI, 
C2, . . ., CN2) and only allowing access to the given content item (CI, C2, . . ., 
CN2) in the aflfirmative. 

1 0. (currently amended): A method according to claim 1 , wherein charact e riz e d in that 
every content item is encrypted and that a content right (CR) is bound to each content 
item and to a User Right (URC) or a Device Rights (DevRC) or a Domain Rights (DRC), 
and that the content right (CR) of a given content item comprises an decryption key for 
decr3q)ting the given content item. 

1 1 .(currently amended): A method according to claim 3, wherein characterized in that 

- the Domain Users List (DUC) is implemented as or included in a Domain Users 
Certificate, and/or 

- the Domain Devices List (DDC) is implemented as or included in a Domain 
Devices Certificate, and/or 
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- the User Right (URC 1 , URC2, . . . , URCN2) is implemented as or included in a 

User Right Certificate, and/or 

- the Device Right (DevRC) is implemented as or included in a Device Right 
Certificate, and/or 

- the Domain Rights (DRC 1 , DRC2, . . . , DRCN2) is implemented/included in a 
Domain Rights Certificate. 

12. (currently amended): A system for generating an Authorized Domain (AD), the 
system comprising: 

- means for obtaining a domain identifier (Domain ID) uniquely identifying the 
Authorized Domain (AD) (i^, 

- means for binding at least one user (PI , P2, . . . , PNi) to the domain identifier 
(DomainID), and 

- means for binding at least one device (D 1 , D2, . . . , DM) to the domain identifier 

(Domain ID), and 

- means for binding at least one content item (CI. C2 CN?) to the Authorized 

Domain (AD) given by the domain identifier (Domain_ID\ 

thereby obtaining a number of devices (Dl, D2, . . ., DM) and a number of users 

persons (P 1 , P2, . . . , PNi) that is authorized to access a content item items (CI. C2 

CN7) of said Authorized Domain (AD) (WO) 

wherein access to the at least one content item (CI. C2 CN?) is obtained by 

verifying that the at least one content item (CI. C2 CN?) and the at least one user 

(PI. P2 PNj) are linked to the same domain identifier (Domain ID) or by verifying 
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DM) and the at least one content item (CI. C2. 



CN?) ) are linked to the same domain identifier (Domain ID) . 



Claim 13. (canceled) 

14. (currently amended): A system according to claim 12, wherein characterized in that 
the means for binding at least one user (PI, P2, . . ., PNi) to the domain identifier 
(Domain ID) is adapted to: 

- obtain or generate a Domain Users List (DUC) comprising the domain identifier 
(Domain ID) and a unique identifier (Pers_IDl, Pers_ID2, . . ., Pers IDNi) for a 
user (P 1 , P2, . . . , PNi) thereby defining that the user is bound to the Authorized 
Domain (AD) mm. 
and/or in that 

the means for binding at least one device (Dl, D2, . . ., DM) to the domain 
identifier (Domain ID) is adapted to: 

obtain or generate a Domain Devices List (DDC) comprising the domain 
identifier (Domain ID) and a unique identifier (Dev.IDl, Dev.ID2, . . ., Dev.IDM) 
for a device (Dl, D2, . . ., DM) thereby defining that the device is bound to the 
domain (WO). 

15. (currently amended): A system according to claim 12 4^, wherein charactorizod in 
^lat the means for binding at least one content item (C 1 , C2, . . . , CN2) to the Authorized 
Domain (AD) is adapted to: 
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- bind a content item (C 1 , C2, . . . , CN2) to a User Right (URC 1 , URC2, . . . 
URCN2), where said User Right (URCl, URC2, . . . URCN2) is bound to a user 
(PI, P2, . . ., PNi) bound to the Authorized Domain (AD) (WO), and/or 

- bind a content item (CI, C2, . . ., CN2) to a Device Right (DevRC), where said 
Device Right (DevRC) is bound to a device (Dl, D2, . . ., DM) bound to the 
Authorized Domain (AD) (iOO). 

1 6. (currently amended): A system according to claim 12 43-, wherein charact e riz e d in 
that the means for binding at least one content item (C 1 , C2, . . . , CN2) to the Authorized 
Domain (AD) is adapted to: 

- bind a content item (C 1 , C2, . . . , CN3) to a Domain Right (DRC 1 , DRC2, . . . 
DRCN2), where said Domain Right (DRCl, DRC2, . . . DRCN2) is bound to the 
Authorized Domain (AD) (iOO). 

17. (currently amended): A system according to claim 15, wherein charactorizod in that 
the User Right (URC) or the Device Right (DevRC) or the Domain Rights (DRC) 
comprises rights data (Rghts Dat) representing which rights exists in relation to the at 
least one content item (C 1 , C2, . . . , CN2) bound to the User Right (URC) or the Device 
Right (DevRC) or the Domain Rights (DRC). 

18. (currently amended): A system according to claim 12, charactorizod in that wherein 
the system further comprises means for controlling access to a given content item bound 
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to the Authorized Domain (AD) (100) by a given device being operated by a given user, 
where the means is adapted to: 

check if the given user is bound to the same Authorized Domain (AD) (ICQ) as 

the given content item, or 

- check if the given device is bound to the same Authorized Domain (AD) (100) as 
the given content item, 

and allow access for the given user via the given device and/or other devices to 
the content item if the given user is bound to the same Authorized Domain (AD) (100) , 

or allow access for the given user and/or other users via the given device to the 
content item if the given device is part of the same Authorized Domain (AD) (100) . 

19. (currently amended): A system according to claim 12, charact e riz e d in that wherein 
the system further comprises means for controlling access to a given content item (CI, 
C2, . . . , CN2), being bound to the Authorized Domain (AD) (100) and having a unique 
content identifier (Cont ID), by a given device being operated by a given user, where the 
means is adapted to: 

- check if the Domain Devices List (DDC) of the Authorized Domain (AD) (100) 
comprises an identifier (Dev.ID) of the given device, thereby checking if the 
given device is bound to the same Authorized Domain (AD) (100) as the content 

item, and/or 

- check if the Domain User List (DUC) of the Authorized Domain (AD) (WO) 
comprises an identifier (PersID) of the given user (PI, P2, . . ., PNi) thereby 
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checking if the given user is bound to the same Authorized Domain (AD) (100) as 

the content item, 

and allow access to the given content item (C 1 , C2, . . . , CN2) by the given device 
(Dl, D2, . . ., DM) for any user if the given device is bound to the same 
Authorized Domain (AD) (100) as the content item being accessed, and/or 
allow access to the given content item (C 1 , C2, . . . , CN2) by any device including 
the given device for the given user if the given user is bound to the same 
Authorized Domain (AD) (100) as the content item being accessed. 

20. (currently amended): A system according to claim 18, wherein characterized in that 
the means for controlling access of a given content item is further adapted to further: 

check that the User Right (URC) for the given content item specifies that the 
given user (PI, P2, . . ., PNi) has the right to access the given content item (CI, 
C2, . . ., CN2) and only allowing access to the given content item (CI, C2, . . ., 
CN2) in the affirmative. 

21. (currently amended): A system according to claim 12, wherein oharaotorizod in that 
every content item is encrypted and that a content right (CR) is bound to each content 
item and to a User Right (URC) or a Device Rights (DevRC) or a Domain Rights (DRC), 
and that the content right (CR) of a given content item comprises an decryption key for 
decrypting the given content item. 
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22. (currently amended): A system according to claim 14 24, wherein characteriz e d in 

- the Domain Users List (DUC) is implemented as or included in a Domain Users 
Certificate, and/or 

- the Domain Devices List (DDC) is implemented as or included in a Domain 
Devices Certificate, and/or 

- the User Right (URC 1 , URC2, . . . , URCN2) is implemented as or included in a 
User Right Certificate, and/or 

- the Device Right (DevRC) is implemented as or included in a Device Right 
Certificate, and/or 

- the Domain Rights (DRC 1 , DRC2, . . . , DRCN2) is implemented/included in a 
Domain Rights Certificate. 



23. (previously presented): A computer readable medium having stored thereon 
instructions for causing one or more processing units to execute the method according to 
claim 1 . 
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